VSFTPd problem
Paul F. Johnson
paul at all-the-johnsons.co.uk
Wed Sep 7 08:30:46 UTC 2005
Hi,
> > I've never had this problem before with vsftpd and am using the default
> > security settings (firewall on, set for ftp, www, ssh and ntp ports to
> > be open and SELinux to be nice).
>
> "man ftpd_selinux" says:
>
> SELinux ftp daemon policy is customizable based on least access
> required. So by default SElinux does not allow users to login and
> read their home directories. If you are setting up this machine as
> a ftpd server and wish to allow users to access their home
> directorories, you need to set the ftp_home_dir boolean.
>
> setsebool -P ftp_home_dir 1
>
> I guess you've already done this since downloads are working.
Yep. Normally, all I ever have to do is set up a user and they instantly
get read/write ftp access. This one box is proving to be a pain!
> Are you getting any AVC messages in /var/log/audit/audit.log when trying
> to write to this area? Are the home directories on a local filesystem or
> are you using NFS/samba etc.?
I'll need to look at audit.log. All home directories are accessed via
ftp and are held on a bog standard ext3 drive.
> > Second to this, how do I get it to allow passive transfers? proftpd
> > seemed to do this by default (IIRC), but I can't get vsftpd to do it.
>
> Pass; I'm also a proftpd user and haven't tried vsftpd.
Ah....
> > Any help would be appreciated and if you're in the Salford area of
> > Manchester, beer provided :-)
>
> Given the Shanks quote common in your sigs, it would appear you're deep
> in enemy territory ;-) I'm in Sale.
Well, hopefully I won't be here for that much longer (10 years of being
just down the road from failureville - Old Trafford to those who don't
know it) is more than enough. Got my teaching qualifications, just a
matter of finding a job nearer to St Helens.
TTFN
Paul
--
"Logic, my dear Zoe, is merely the ability to be wrong with authority" -
Dr Who
More information about the users
mailing list